Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee,...
Transcript of Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee,...
![Page 1: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/1.jpg)
Securing Court Information
![Page 2: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/2.jpg)
October is National Cyber Security Awareness Month!
• 11th Annual
• Sponsored by the Department of Homeland Security
![Page 3: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/3.jpg)
• How it all works– Computers 101– Hackers– Court Data
• Justice Building Network– Attacks– Resources– Defense In Depth
• Threats to Court Data• What Can You Do?
– Antivirus – Software Updates– Phishing– Passwords
![Page 4: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/4.jpg)
![Page 5: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/5.jpg)
Computers 101
• A computer is a machine that follows instructions
• These instructions are the software created by programmers
![Page 6: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/6.jpg)
AOC Network
Court user
Court user
![Page 7: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/7.jpg)
Definitions
• Hackers vs Attackers
• Malware
![Page 8: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/8.jpg)
Hackers
• Script Kiddies
• Knowledgeable Users
• At the highest level, hackers are computer programmers and hacking is a business!
• They are smart, they do this for a living, and they just need to make other people’s computers follow their instructions.
• Organized Crime• Political Players
(countries, hactivists)• Malicious
![Page 9: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/9.jpg)
Kristoffer Von Hassel
![Page 10: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/10.jpg)
Cyber’s Most Wanted List
• 26 Individuals– 1 American– 5 Chinese military– Most of the rest are
Russian
![Page 11: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/11.jpg)
AOC Network
Court user
Court userHacker
Hacker
Hacker
Hacker
We are all interconnected!
![Page 12: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/12.jpg)
What does the court have of value?
• AOC Network– Personal info - court databases and web pages, network files
• DL, SS#, email addresses, etc.
– Financial info - court databases and web pages, network files
• Court Users– Personal info
• DL, SS#, email addresses, etc.
– Financial info
– Access to court databases
![Page 13: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/13.jpg)
Attacks on Justice Building Network
• October Blocked Attacks 30,590
• 2014 Total Blocked Attacks 470,665
![Page 14: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/14.jpg)
Blocked Attacks – Top 10 Countries
3%
3%
4%
5%
73%
3%
1%
2%
2%
2%
(Other 2%)
![Page 15: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/15.jpg)
Resources within Justice Building Network
• Contexte Database
• IMIS Database
• Jury Database
• Laserfiche
• Web Servers
• User Workstations
![Page 16: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/16.jpg)
AOC Defenses for Resources/Court Data
• Physical security of server room
• IPS
• Firewalls
• Data Backups
• Disaster Recovery
• Controlled access to databases
• Security level access within databases
![Page 17: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/17.jpg)
Defense In Depth
Layers of protection to slow attacks and speed recovery
Physical securityIPS/IDSFirewallsPasswordsPolicyAntivirusSoftware updatesEtc.
YOU are one of the most important defenses!
![Page 18: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/18.jpg)
Threats
• Social Engineering – Phishing
• Breaching Systems – Software Updates, Antivirus, Weak Passwords
• Intercepting Data – Not generally your concern, https
• Disruption
• Hactivism – case outcomes*Jan 24, 2014 – uscourts.gov hacked?
e-filing affected
![Page 19: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/19.jpg)
Keep in mind….
….there doesn’t even need to be a reason.
![Page 20: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/20.jpg)
Target Breach
• Started with a phishing email to contractor with about 125 employees
• 40 million cards stolen
• 70 million personal information records stolen (name, address, email, and phone number)
![Page 21: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/21.jpg)
What can you do to protect court data?
• Antivirus*
• Software Updates*
• Phishing
• Passwords
![Page 22: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/22.jpg)
Updating Antivirus and Software
• Justice Building Network
– AOC CIS
• Courts with IT support
– IT Staff
• Courts without IT support
– ?
![Page 23: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/23.jpg)
Definitions
• Antivirus software blocks knownmalware.– Symantec, McAfee, AVG, Kaspersky, etc.
• Software Updates (Patches) fix flaws in programming, including security flaws– Microsoft Windows, Internet Explorer, Google Chrome (twice), Firefox, Java,
Adobe Flash Player… have all had critical security patches released in October
![Page 24: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/24.jpg)
90% of successful exploits are made against unpatched
computers!
Antivirus and patched software work hand-in-hand.
![Page 25: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/25.jpg)
![Page 26: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/26.jpg)
Zero-Day Market
*from Forbes.com, March 2012
Rough market value assembled by Forbes reporter in 2012:
![Page 27: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/27.jpg)
![Page 28: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/28.jpg)
Malware X1Malware X2
![Page 29: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/29.jpg)
Malware X1Malware X2
![Page 30: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/30.jpg)
How Malware Spreads
• Phishing
• Websites
• Botnet
![Page 31: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/31.jpg)
Malware X1
Malware X2
Three scenarios follow for this user coming into contact with Malware X1 and X2…
![Page 32: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/32.jpg)
Malware X1
Malware X2
Scenario 1 – no antivirus update, no software update
Result – infection by Malware X1 and Malware X2
![Page 33: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/33.jpg)
Malware X1
Malware X2
Scenario 2 – antivirus update for Malware X1, no software update
Result – Malware X1 blocked, infection by Malware X2
![Page 34: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/34.jpg)
Malware X1
Malware X2
Scenario 3 – antivirus update for Malware X1, software update
Result – no infection
![Page 35: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/35.jpg)
Software Update Notes
• Automatic Updates
• Java– Contexte/Xerox
– Do not update without notification from AOC
• Windows XP and other unsupported software
![Page 36: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/36.jpg)
What you can do
• Justice Building Network– Let Desktop Support (Wade, Jimmy Don,
Shadrick) know if you notice something out of date
• Courts with IT support– Ask IT staff if they are updating software– Let IT staff know if you notice something out of
date
• Courts without IT support– Keep your software updated– Need guidance?
![Page 37: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/37.jpg)
Phishing
• Phishing is an attempt through email to solicit personal information . Often malicious code is also involved.
![Page 38: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/38.jpg)
Phishing
• Reputable companies/entities will not ask you for personal information through email.
• If in doubt, contact the company/entity directly.
![Page 39: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/39.jpg)
Suspicious Emails
• Try to convince you to click on a link or attachment.
• You do not know the sender and/or the email address is long/convoluted/strange.
• Word usage/grammar/punctuation errors.
• Email details that do not apply to you (package tracking, airline ticket, court/legal proceedings, etc.).
![Page 40: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/40.jpg)
What to do
• Do not click on any links or attachments.
• Delete the email (Inbox, Sent Items, Deleted Items).
![Page 41: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/41.jpg)
Phishing Example(Malicious Attachment)
![Page 42: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/42.jpg)
Phishing Example(Link is to a website with .br)
![Page 43: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/43.jpg)
NOT a Phishing Example(Emma Notice – link “https://t.e2ma.net/message/l47df/xl9rki”)
![Page 44: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/44.jpg)
Spaceballs (1987)
![Page 45: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/45.jpg)
![Page 46: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/46.jpg)
25 Most Used Passwords of 2013
1. 123456
2. password
3. 12345678
4. qwerty
5. abc123
6. 123456789
7. 111111
8. 1234567
9. iloveyou
10. adobe123
11. 123123
12. admin
13. 1234567890
14. letmein
15. photoshop
16. 1234
17. monkey
18. shadow
19. sunshine
20. 12345
21. password1
22. princess
23. azerty
24. trustno1
25. 000000
*from annual list
![Page 47: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/47.jpg)
A Little Math
For an 8 character password:
• Numbers:
10*10*10*10*10*10*10*10= 100,000,000(100 million)
• #s, lowercase, uppercase, and special:95*95*95*95*95*95*95*95 = 6,704,780,954,517,120(6 quadrillion, 704 trillion, 780 billion, 954 million, 517 thousand, 120)
![Page 48: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/48.jpg)
Password Tips
• The longer, the better.
• Use all 4 character types.
• Don’t use the same password for multiple accounts.
• Don’t share your password with anyone.
Ex: Amy lost her tooth yesterday.
Amy lost her toof yesterday.
aMYlosthert00fyesterday>>
![Page 49: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/49.jpg)
Friends of the Court
![Page 50: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/50.jpg)
AOC Network
Court user
Court userHacker
Hacker
Hacker
Hacker
We are all interconnected!
![Page 51: Securing Court Information · •Antivirus software blocks known malware. – Symantec, McAfee, AVG, Kaspersky, etc. •Software Updates (Patches) fix flaws in programming, including](https://reader036.fdocuments.us/reader036/viewer/2022071218/604ec340a9dc2c78963d7aa6/html5/thumbnails/51.jpg)